Session Code: BRE0675
Presenter(s): Troy
Company(s): The Hershey Company
Abstract:
Join this session to hear about how The Hershey Company is going through a digital transformation. As a result, the IT risks to the 125-year-old company are growing in both volume and complexity. In response to this changing landscape, the IT risk and compliance team realized the need to reestablish their mission and rebuild the program. Within 12 months, leveraging the ServiceNow GRC platform, Hershey's was able to implement a new risk-monitoring program based on NIST CSF to establish risk awareness, a compliance management program to help ensure SOX compliance for ITGCs, and a policy exception process to promote visibility to issues. In doing so, they're realizing their mission to “promote shared accountability for the risk equation to all stakeholders and enable informed and intelligent decision making for their IT leaders.”
